033c61c6ea427d1bfc1e5fd6c1a72bc83c5d82e4d456eb0156e8c54a3c1ac576

Sharing

Copy URL Twitter E-mail

General

Target

033c61c6ea427d1bfc1e5fd6c1a72bc83c5d82e4d456eb0156e8c54a3c1ac576
Size

100KB
MD5

62cab8506737154239dd32606c53af1d
SHA1

9a51c7294732c0554365748e45bb6487fa4f876f
SHA256

033c61c6ea427d1bfc1e5fd6c1a72bc83c5d82e4d456eb0156e8c54a3c1ac576
SHA512

6661573a731e5a31917d9f06e3817d986f62a4fb6a0a471c9407febbc94a28710e7de28ebedd66f30a11a0de672280cf7db2e972c15cfdcb42486987f19eaf6f
SSDEEP

1536:OwddVSalCd/TljlIokKvOEOdhUvijRuHglF0NpY:ndVcVhjlvSWOQAl3

Score

N/A

Malware Config

Signatures

Files

033c61c6ea427d1bfc1e5fd6c1a72bc83c5d82e4d456eb0156e8c54a3c1ac576
.dll windows x86

63b76b6b61045a8941df74c829edc29b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

GetAdaptersInfo
GetIpAddrTable

wininet

HttpSendRequestA
HttpOpenRequestA
InternetQueryOptionA
InternetSetOptionA
InternetOpenA
InternetConnectA
InternetCloseHandle
HttpAddRequestHeadersA

netapi32

NetUserEnum
NetApiBufferFree

ws2_32

WSACleanup
gethostbyaddr
WSAStartup

shlwapi

StrStrIA
PathFileExistsA

setupapi

SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList

psapi

GetModuleFileNameExA

kernel32

EnterCriticalSection
GetTimeFormatA
GetProcessHeap
SetEndOfFile
GetOEMCP
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
GetCPInfo
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
MultiByteToWideChar
WideCharToMultiByte
RaiseException
GetLastError
InitializeCriticalSection
DeleteCriticalSection
lstrlenA
QueryPerformanceFrequency
QueryPerformanceCounter
GetSystemInfo
DeviceIoControl
FormatMessageA
LocalFree
LocalAlloc
CloseHandle
CreateFileA
ReadFile
SetFilePointer
GetModuleFileNameA
SizeofResource
LockResource
LoadResource
FindResourceA
FindResourceExA
lstrcatA
GetVolumeInformationA
lstrcpyA
LoadLibraryA
FindClose
FindNextFileA
FindFirstFileA
GlobalMemoryStatus
Process32Next
OpenProcess
Process32First
CreateToolhelp32Snapshot
FreeLibraryAndExitThread
FreeLibrary
GetLocalTime
lstrcmpW
lstrcpynA
LeaveCriticalSection
GetDateFormatA
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetDiskFreeSpaceExA
SetCurrentDirectoryA
GetDriveTypeA
GetLogicalDriveStringsA
CreateThread
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
VirtualQuery
RtlUnwind
GetCommandLineA
HeapDestroy
HeapCreate
VirtualFree
HeapReAlloc
IsBadWritePtr
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
HeapSize
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile

user32

wvsprintfA
wsprintfA
EnumDisplayDevicesA
GetKeyboardLayoutNameA
ActivateKeyboardLayout
GetKeyboardLayout
GetKeyboardLayoutList

advapi32

RegEnumValueA
RegCreateKeyA
RegQueryValueExA
RegQueryValueA
RegEnumKeyA
RegQueryInfoKeyA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA
RegFlushKey
RegOpenKeyA

shell32

SHGetSpecialFolderPathA

ole32

CoInitialize
CoCreateInstance

Exports

Exports

_DllMain@12
do_work

Sections

.text
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63b76b6b61045a8941df74c829edc29b

Headers

File Characteristics

Imports

iphlpapi

wininet

netapi32

ws2_32

shlwapi

setupapi

psapi

kernel32

user32

advapi32

shell32

ole32

Exports

Exports

Sections

.text Size: 64KB - Virtual size: 60KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 4KB - Virtual size: 9KB

.reloc Size: 8KB - Virtual size: 5KB

.text
Size: 64KB - Virtual size: 60KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 4KB - Virtual size: 9KB

.reloc
Size: 8KB - Virtual size: 5KB